General
-
Target
Blammed.exe
-
Size
63KB
-
Sample
240328-bgx6cscd4z
-
MD5
07a2486096686a8553430ebf053f611b
-
SHA1
c6fa9432b16ec81dc91c4eba30a2e1bed87a03e0
-
SHA256
a38e4bdb499a7e5cea57617eeea3062ecab7f281bc28e8f0cffee58340a7e397
-
SHA512
bb212f9a0a403fbc32dc14825c4e88d3b129147252ecc5b9efdc37c9e503fbde088af06b3c3881b51e911580c62236ea6448e197d95ec1b9dd3e5f5ec869c6dc
-
SSDEEP
768:6X4YSjO4z+O78dAC8A+XOw0bohuibTfy3g0v2n1+T4FSBGJmDbDvph0oX26DG7S3:Jp+0FuN31OnKOUb9h9BucdpqKmY7
Malware Config
Extracted
asyncrat
Default
吾G9רשn4kIתת伊Ε斯zzΙΒ勒U杰tω
-
delay
1
-
install
false
-
install_folder
%AppData%
-
pastebin_config
https://pastebin.com/raw/t7uDRPdi
Targets
-
-
Target
Blammed.exe
-
Size
63KB
-
MD5
07a2486096686a8553430ebf053f611b
-
SHA1
c6fa9432b16ec81dc91c4eba30a2e1bed87a03e0
-
SHA256
a38e4bdb499a7e5cea57617eeea3062ecab7f281bc28e8f0cffee58340a7e397
-
SHA512
bb212f9a0a403fbc32dc14825c4e88d3b129147252ecc5b9efdc37c9e503fbde088af06b3c3881b51e911580c62236ea6448e197d95ec1b9dd3e5f5ec869c6dc
-
SSDEEP
768:6X4YSjO4z+O78dAC8A+XOw0bohuibTfy3g0v2n1+T4FSBGJmDbDvph0oX26DG7S3:Jp+0FuN31OnKOUb9h9BucdpqKmY7
-
StormKitty payload
-
Legitimate hosting services abused for malware hosting/C2
-